Infosecurity News
Private sector initiative, not global treaty, is the best cybersecurity strategy
An international treaty to regulate cybersecurity around the globe may not be achievable; rather, the best approach might be a series of voluntary private sector initiatives, according a report by the EastWest Institute think tank.
EC likely to recommend shorter data retention periods
Shorter data retention periods are likely to be introduced in an updated version of the EU Data Retention Directive.
VASCO purchases Dutch digital certificates provider
US-based VASCO Data Security will pay $12 million from its own cash reserves to acquire privately-held DigiNotar of Beverwijk, the Netherlands.
Oracle faces $100m source code theft lawsuit
Oracle is facing a $100m lawsuit after security software firm 2FA accused Oracle's subsidiary Passlogix of stealing source code for authentication and credential management.
RIM agrees to block porn on BlackBerrys in Indonesia
Research in Motion (RIM) has agreed to restrict access to pornographic sites via its BlackBerry smartphone devices in Indonesia after pressure from Indonesian authorities.
NSF money helps expand pipeline for federal cybersecurity workforce
To help fill the cybersecurity workforce gap in the US government, the National Science Foundation (NSF) is contributing $1.25 million over four years to fund students studying cybersecurity at the University of Texas at San Antonio (UTSA).
Vodafone Australia customer details sold to criminals
Vodafone Australia may face a class action for breach of privacy after it confirmed that its customers' details may have been sold to criminals.
Heading for disaster: small and mid-sized firms are not prepared
Small and mid-sized businesses (SMBs) are not taking the steps necessary to prepare for a disaster or substantial data loss, according to a survey sponsored by Symantec.
University of Maine invests $2.6 million to close information security gaps
The University of Maine will spend $2.6 million over the next three years to beef up information security following a data breach last year that exposed personal information on 4585 students and alumni who had visited the university’s counseling center.
Statistics Canada mum on data breaches involving Canadian citizens
Statistics Canada has experienced a number of recent data breaches that have exposed sensitive information of Canadian citizens, but has failed to report the breaches publicly, according to internal agency documents.
Christmas/New Year malware saw a surge of themed malware attacks
The latest analysis of Christmas and New Year malware attacks claims to show that cybercriminals took advantage of the holiday shutdown to stage a series of themed attacks.
Cease-fire: DISA expands DMZ to protect defense networks
The Defense Information Systems Agency (DISA) is expanding the use of its “demilitarized zone” (DMZ) to protect information on the Department of Defense’s unclassified network. The move aims to prevent attacks from the web while maintaining internet access for DoD users.
Security firm Imperva praises government memo on insider threats
The memo by US intelligence officials urging government agencies to set up insider threat programs in response to WikiLeaks applies to all organizations, says security firm Imperva.
More botnets and Stuxnet attacks on the horizon says security expert
The threat landscape is evolving and, as a result, botnets and cross-platform security threats will head up the security threat list for 2011, according to ESET, the Slovakian IT security vendor.
Researcher describes method for bypassing Adobe Flash sandbox
Information security researcher Billy Rios has developed a method for bypassing an Adobe sandbox that is designed to prevent Flash files from being used as launching pads for attacks on computers.
Scottish court records discovered at recycling bank
The Information Commissioner's Office (ICO) has found the Scottish Court Service in breach of the Data Protection Act for failing to prevent court documents containing personal data being accidentally disposed of at a local recycling bank in Glasgow.
Most people who sell their old mobiles don't clear personal data
Just over three quarters of the UK population have sold on old mobile phones, but only 31% wiped all personal information before selling, a survey has revealed.
Australian government security agency warns on 'virtual crime' trend
The Australian Crime Commission (ACC), a government security agency, is reporting on a new fraud trend that the country's national criminal intelligence agency calls 'virtual crime'.
Panda Security reports one-third of malware was created in 2010
Panda Security's research arm, Panda Labs, claims that 34% of all malware ever created was coded/created during 2010.
Bogus White House Christmas e-card steals sensitive law enforcement data
Federal workers were sent fake White House Christmas e-cards containing Zeus malware designed to gain access to computer systems and steal sensitive documents.